Trustworthiness in Industrial System Design
T HE T RUSTWORTHY S YSTEM S TATUS M ODEL (TSSM)
targets
Threat system
Pool of
Trustworthiness
Methods
cha
llen
ges
Security
Safety
ch a
lle
suc nges
cee
d
Reliability
Privacy
fail
Security
Safety
Security
Safety
Resilience
fail
Security
Safety
Resilience
Damage
s
ge
en
l
l
a
ch
“orange”
Disaster
s
ge
en
l
l
a
ch
“red”
fail
Downfall
s in
result
Ruined
“Fubar”
System
status
fail
Disastrous
“doomed”
ch a
lle
suc nges
cee
d
Resilience
Damaged
“broken”
ch a
lle
suc nges
cee
d
Disruption
s
ge
en
l
l
a
ch
“yellow”
Disrupted
“problems”
ch a
lle
suc nges
cee
d
“green”
Normal
“works”
“magenta”
Stabilizing
methods
Defending
methods
Alert
status
Figure 7: Figure 7: Trustworthy System Status Model (TSSM)
results in the Trustworthy System Status
Model (TSSM) shown graphically in Figure 7.
The schema from normal to damage can be
extended to further statutes which bring the
system into a growingly fatal situation. This
- 21 -
IIC Journal of Innovation